NuggetPhantom (Malware Family)

SYMBOL	COMMON_NAME	aka. SYNONYMS

win.nugget_phantom (Back to overview)

NuggetPhantom

NSFOCUS describes PhantomNugget as a modularized malware toolkit, that was spread using EternalBlue. Payloads included a RAT and a XMRig miner.

2019-06-27 ⋅ Red Canary ⋅ Casey Smith, Michael Haag
Tracking driver inventory to unearth rootkits
NuggetPhantom

2018-10-08 ⋅ NSFOCUS ⋅ NSFOCUS
NuggetPhantom Analysis Report
NuggetPhantom

There is no Yara-Signature yet.